Site-to-site VPN pfSense1.2.2 to Netgear routeur firewall ADSL DG834

babou

I do not understand why my ipsec is not stable  :'(

this is my pfsense log :

racoon: [MAIA]: INFO: IPsec-SA established: ESP 212.51.172.214[0]->80.14.153.251[0] spi=3068140526(0xb6e01bee)
Oct 22 17:06:42 racoon: [MAIA]: INFO: IPsec-SA established: ESP 80.14.153.251[0]->212.51.172.214[0] spi=107587375(0x669a72f)
Oct 22 17:06:41 racoon: [MAIA]: INFO: respond new phase 2 negotiation: 212.51.172.214[0]<=>80.14.153.251[0]
Oct 22 17:06:41 racoon: [MAIA]: INFO: ISAKMP-SA established 212.51.172.214[500]-80.14.153.251[500] spi:ed4d4e6e9fe92f26:e6c89a8e7d5f8142
Oct 22 17:06:41 racoon: [MAIA]: INFO: ISAKMP-SA deleted 212.51.172.214[500]-80.14.153.251[500] spi:0ccceea419740991:d432cca09dc0e219
Oct 22 17:06:41 racoon: INFO: received Vendor ID: DPD
Oct 22 17:06:41 racoon: INFO: begin Identity Protection mode.
Oct 22 17:06:41 racoon: [MAIA]: INFO: respond new phase 1 negotiation: 212.51.172.214[500]<=>80.14.153.251[500]
Oct 22 17:06:40 racoon: [MAIA]: INFO: ISAKMP-SA expired 212.51.172.214[500]-80.14.153.251[500] spi:0ccceea419740991:d432cca09dc0e219

this is my netgear log

Thu, 2009-10-22 17:06:03 - [cg43] received Delete SA payload: deleting IPSEC State #190
Thu, 2009-10-22 17:06:13 - [cg43] sent QI2, IPsec SA established
Thu, 2009-10-22 17:06:40 - [cg43] terminating SAs using this connection
Thu, 2009-10-22 17:06:41 - [cg43] initiating Main Mode
Thu, 2009-10-22 17:06:41 - [cg43] ISAKMP SA established
Thu, 2009-10-22 17:06:41 - [cg43] sent QI2, IPsec SA established
Thu, 2009-10-22 17:07:57 - [cg43] terminating SAs using this connection
Thu, 2009-10-22 17:07:57 - [cg43] initiating Main Mode
Thu, 2009-10-22 17:07:58 - [cg43] ISAKMP SA established
Thu, 2009-10-22 17:07:58 - [cg43] sent QI2, IPsec SA established
Thu, 2009-10-22 17:07:58 - [cg43] sent QI2, IPsec SA established
Thu, 2009-10-22 17:07:59 - [cg43] received Delete SA payload: deleting IPSEC State #196
Thu, 2009-10-22 17:07:59 - [cg43] sent QI2, IPsec SA established
Thu, 2009-10-22 17:08:00 - [cg43] received Delete SA payload: deleting IPSEC State #197
Thu, 2009-10-22 17:08:00 - [cg43] sent QI2, IPsec SA established
Thu, 2009-10-22 17:08:01 - [cg43] received Delete SA payload: deleting IPSEC State #198
Thu, 2009-10-22 17:08:02 - [cg43] sent QI2, IPsec SA established
Thu, 2009-10-22 17:08:02 - [cg43] received Delete SA payload: deleting IPSEC State #199
Thu, 2009-10-22 17:08:03 - [cg43] sent QI2, IPsec SA established
Thu, 2009-10-22 17:08:04 - [cg43] received Delete SA payload: deleting IPSEC State #200
Thu, 2009-10-22 17:08:04 - [cg43] sent QI2, IPsec SA established
Thu, 2009-10-22 17:08:05 - [cg43] received Delete SA payload: deleting IPSEC State #201
Thu, 2009-10-22 17:08:06 - [cg43] sent QI2, IPsec SA established
Thu, 2009-10-22 17:08:06 - [cg43] received Delete SA payload:

Someone can help me please ?

netmethods

If you're still having an issue, please post more details of your config.

Visseroth

IPSec Sucks!  >:(
Been fighting with it at my locations for well over a week and I'm about give put some c4 on the box and call it good.

netmethods

It is most likely a configuration issue with your policy settings. Please post screen shots of your config on both sides and make sure you are running 1.2.3-rc3